hdf5-ssp-sig

SSP SIG Governance

This document explains how the SSP SIG organizes its work and evolves over time.

1. Relationship to the HDF5 Project

The SSP SIG is a community body focused on safety, security, and privacy concerns across the HDF5 ecosystem. It operates under the broader governance of the HDF5 project and coordinates with:

2. Roles and Selection

Roles are defined in CHARTER.md. This document adds the selection and replacement procedures.

2.1 Selection

2.2 Vacancies and Replacement

3. Decision Lifecycle

Decisions typically follow this path:

  1. Intake
    • A GitHub issue is opened using the SSP Proposal template or a related template.
  2. Discussion
    • Comments and feedback are collected asynchronously.
    • The item is added to a meeting agenda if a decision or direction is needed.
  3. Decision
    • Consensus is sought first; if needed, a vote is taken.
    • The outcome is recorded in:
      • The original issue; and
      • DECISION_LOG.md.
  4. Implementation
    • Work items are tracked as issues and PRs.
  5. Review
    • Relevant maintainers and SIG members review completed work.

4. Transparency

5. Conflict Resolution

6. Amending this Document